What is CVE-2026-23413?

CVE-2026-23413 is a high-severity vulnerability in Linux. CVSS score: 7.8/10. Published 2026-04-02.

How severe is CVE-2026-23413?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Linux

CVE-2026-23413

In the Linux kernel, the following vulnerability has been resolved: clsact: Fix use-after-free in init/destroy rollback asymmetry Fix a use-after-free in the clsact qdisc upon init/destroy rollback asymmetry. The latter is achieved by fi…

EPSS: 0.000 (3.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Linux — versions f61ecf1bd5b562ebfd7d430ccb31619857e80857, 230bb13650b0f186f540500fd5f5f7096a822a2a, 7.0

References

git.kernel.org/stable/c/a73d95b57bf9faebdfed591bcb7ed9292062a84c
git.kernel.org/stable/c/37bef86e5428d59f70a4da82b80f9a8f252fecbe
git.kernel.org/stable/c/4c9af67f99aa3e51b522c54968ab3ac8272be41c
git.kernel.org/stable/c/0509b762bc5e8ea7b8391130730c6d8502fc6e69
git.kernel.org/stable/c/a0671125d4f55e1e98d9bde8a0b671941987e208

Frequently asked questions

What is CVE-2026-23413?: CVE-2026-23413 is a high-severity vulnerability in Linux. CVSS score: 7.8/10. Published 2026-04-02.
How severe is CVE-2026-23413?: High severity. CVSS v3 base score is 7.8 out of 10.